On 2012-09-04 21:32, Jon Callas wrote: > On Sep 4, 2012, at 12:57, Anders Rundgren <[email protected]> wrote: > >> On 2012-09-04 18:28, Phillip Hallam-Baker wrote: >>> I would like to see us 'do' something 'about' client authentication. >>> >>> But I don't see much of a client PKI out there to be operated, I think >>> we are going to have to 'build stuff' to fix it. So I don't think its >>> a PKI operations issue. >> >> http://www.w3.org/2012/webcrypto > > This isn't the same thing. JOSE and all of that are doing crypto, and they > are doing it on the web, but it isn't web PKI, either server side nor client > side.
Jon, in Korea there are 25M active certificates for consumers, in Sweden there are 5M. These schemes are based on proprietary client software. One of the targets of WebCrypto is to get rid of this software. Here is a private proposal on how this could be done: http://webpki.org/papers/PKI/pki-webcrypto.pdf Anders > > Jon > _______________________________________________ wpkops mailing list [email protected] https://www.ietf.org/mailman/listinfo/wpkops
